Meeting operational security standards with Tenable.sc
Oasis Asset Management is a specialist wholesale platform provider in Australia. From product development to ongoing asset management, Oasis offers a complete range of customized services for securities dealers, financial advisors, and investors.
- Key Business Needs: Oasis needed a centralized solution for monitoring vulnerabilities and tracking compliance with operational security standards.
- Tenable Products Selected: Oasis Asset Management selected Tenable.sc, with implementation services provided by Tenable partner Content Security.
Top Benefits: With the centralized scanning and reporting and an easy-to-use interface, Oasis has met its operational security standards and improved its security posture.
Vulnerability Management and Compliance for Financial Data
Given its role in the financial industry and the kind of sensitive company and customer information that the company deals with on a daily basis, Oasis needed vulnerability management across its entire network to strengthen the company’s overall security posture.
In addition, the organization wanted to comply with operational security objectives, including standards based on industry best practices and audit policies defined by the Center for Internet Security (CIS).
With multiple users spread across a distributed, complex network infrastructure, central management was an important factor. Rather than multiple, different tools, the company wanted an integrated suite that would be easy to use and maintain over time. And from a price point, the solution needed to be cost-effective to deploy and maintain.
The Tenable Solution
Oasis engaged with Content Security, a Tenable authorized reseller in ANZ, to address its operational security needs. Content Security offered Tenable.sc – an enterprise-class security solution that combines the power of the Nessus® vulnerability scanner with centralized administration, advanced analytics, reporting and dashboards. Tenable.sc includes audit policies certified by the Center for Internet Security.
Tenable.sc fulfilled Oasis' requirements for:
- Centralized management of distributed vulnerability management
- Compliance scanning and reporting
- An integrated solution (rather than multiple disparate technologies)
- CIS compliance auditing and reporting
- A single easy-to-use interface
The Content Security team provided experienced professional consultants who worked through the project details from inception to implementation.
Oasis now scans and monitors the entire network and its devices centrally using Tenable.sc. Centralized dashboards and reporting help Oasis actively identify and investigate any detected vulnerabilities.
Tenable.sc was substantially more cost-effective than many other solutions in the market. UsingTenable.sc, Oasis was able to meet its operational security standards, pass an internal audit and improve its overall security posture.